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This listing of claims replaces all prior versions, and 
listings of claims in the instant application: 

Listing of Claims: 

1. (Currently Amended) A method for digital content 
access control, comprising: 

determining , on a user device, digital content to be 
made accessible via a rights locker; 

determining , on said user device, enrollment 
authentication data; 

sending , from said user device, a rights locker 
enrollment request to a rights locker provider, said 
rights locker enrollment request comprising a digital 
content request and said enrollment authentication data; 

receiving , on said user device, one or more 
authenticated rights locker access requests in response 
to said sending, said one or more authenticated rights 
locker access requests for subsequent use in accessing 
digital content associated with said rights locker; 

receiving , on said user device, an indication of a 
selection of one of said one or more authenticated rights 
locker access requests; 

sending , from said user device, said authenticated 
rights locker access request to a rights locker provider; 
and 

receiving , on said user device, a result in response 
to said sending said authenticated rights locker access 
request . 

2. (Original) The method of claim 1 wherein said 
digital content request comprises a request for initializing 
said rights locker with rights to specified digital content. 
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3. (Currently Amended) The method of claim 1 wherein 
said enrollment authentication data comprises: 

rights locker access authentication data for 
determining what rights, if any, aaid a user of said user 
device has to access said rights locker; and 

rights content access authentication data for 
determining what rights, if any, said user has to digital 
content associated with said rights locker. 

4. (Original) The method of claim 3 wherein said rights 
locker access authentication data comprises payment for use of 
a rights locker service. 

5. (Original) The method of claim 3 wherein said rights 
content access authentication data comprises payment for 
rights deposited in said rights locker. 

6. (Original) The method of claim 1 wherein said 
enrollment authentication data comprises a reenrollment key 
determined in a previous enrollment request for said rights 
locker, said reenrollment key for supplementing or replacing 
enrollment authentication data of said previous enrollment 
request . 

7. (Currently Amended) The method of claim 1, further 
comprising storing at least part of said one or more 
authenticated rights locker access requests in a bookmark on 
saida: user device. 
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8. (Original) The method of claim 1 wherein said one or 
more authenticated rights locker access requests are embedded 
in a Web cookie. 



Page 6 of 3 0 



Appl. No. 10/687,488 

Amdt. dated April 27, 2 007 

Reply to Office Action of January 29, 2007 



9. (Original) The method of claim 1 wherein said one or 
more authenticated rights locker access requests are 
encapsulated in an HTTP Response message. 



10. (Currently Amended) A method for digital content 
access control, comprising: 

receiving , by a rights locker provider, a rights 
locker enrollment request from a user device associated 
with a user, said rights locker enrollment request 
comprising a digital content request and enrollment 
authentication data; 

determining , by said rights locker provider, whether 
said user is authorized, said determining comprising 
determining the rights of said user to access said rights 
locker and the rights of said user to digital content 
specified by said digital content request; 

if said user is authorized, 

initializing , by said rights locker provider, 

said rights locker with rights to said digital 

content ; 

obtaining , by said rights locker provider, one 
or more tokens that authenticate future access to a 
rights locker corresponding to said digital content; 

creating , by said rights locker provider, one 
or more authenticated rights locker access requests 
based at least in part on said one or more tokens; 

sending , by said rights locker provider, said 
one or more authenticated rights locker access 
requests; 

receiving , by said rights locker provider, an 
indication of a user selection of one of said one or 
more authenticated rights locker access requests; 
and 
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accessing , by said rights locker provider, the 
contents of said rights locker according to a type 
of said rights token. 

11. (Original) The method of claim 10 wherein said 
digital content request comprises a request for initializing 
said rights locker with rights to specified digital content. 

12. (Original) The method of claim 10 wherein said 
enrollment authentication data comprises: 

rights locker access authentication data for 
determining what rights, if any, said user has to access 
said rights locker; and 

rights content access authentication data for 
determining what rights, if any, said user has to digital 
content associated with said rights locker. 

13. (Original) The method of claim 12 wherein said 
rights locker access authentication data comprises payment for 
use of a rights locker service. 

14. (Original) The method of claim 12 wherein said 
rights content access authentication data comprises payment 
for rights deposited in said rights locker. 

15. (Original) The method of claim 10 wherein said 
enrollment authentication data comprises a reenrollment key 
determined in a previous enrollment request for said rights 
locker, said reenrollment key for supplementing or replacing 
enrollment authentication data of said previous enrollment 
request . 
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16. (Original) The method of claim 10 wherein said 
determining comprises determining whether said user is 
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entitled to become an enrolled user based at least in part on 
whether payment for use of the rights locker service succeeds. 

17. (Original) The method of claim 10 wherein said 
determining comprises determining whether an enrolled user is 
entitled to populate said rights locker with rights to said 
digital content based at least in part on whether payment for 
said rights succeeds. 

18. (Currently Amended) The method of claim 10 wherein 
at least part of said one or more authenticated rights locker 
access requests are for storage in a bookmark on asaid user 
device . 



19. (Original) The method of claim 10, further 
comprising embedding said one or more authenticated rights 
locker access requests in a Web cookie before said sending. 

20. (Original) The method of claim 10, further 
comprising encapsulating said one or more authenticated rights 
locker access requests in an HTTP Response message before said 
sending. 
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21. (Currently Amended) A program storage device 
readable by a machine, embodying a program of instructions 
executable by the machine to perform a method for digital 
content access control, the method comprising: 

determining , on a user device, digital content to be 
made accessible via a rights locker; 

determining , on said user device, enrollment 
authentication data; 

sending , from said user device, a rights locker 
enrollment request to a rights locker provider, said 
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rights locker enrollment request comprising a digital 
content request and said enrollment authentication data; 

receiving , on said user device, one or more 
authenticated rights locker access requests in response 
to said sending, said one or more authenticated rights 
locker access requests for subsequent use in accessing 
digital content associated with said rights locker; 

receiving , on said user device, an indication of a 
selection of one of said one or more authenticated rights 
locker access requests; 

sending , from said user device, said authenticated 
rights locker access request to a rights locker provider; 
and 

receiving , on said user device, a result in response 
to said sending said authenticated rights locker access 
request . 

22. (Original) The program storage device of claim 21 
wherein said digital content request comprises a request for 
initializing said rights locker with rights to specified 
digital content. 

23. (Currently Amended) The program storage device of 
claim 21 wherein said enrollment authentication data 
comprises : 

rights locker access authentication data for 
determining what rights, if any, said a user of said user 
device has to access said rights locker; and 

rights content access authentication data for 
determining what rights, if any, said user has to digital 
content associated with said rights locker. 
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24. (Original) The program storage device of claim 23 
wherein said rights locker access authentication data 
comprises payment for use of a rights locker service. 

25. (Original) The program storage device of claim 23 
wherein said rights content access authentication data 
comprises payment for rights deposited in said rights locker. 

26. (Original) The program storage device of claim 21 
wherein said enrollment authentication data comprises a 
reenrollment key determined in a previous enrollment request 
for said rights locker, said reenrollment key for 
supplementing or replacing enrollment authentication data of 
said previous enrollment request. 

27. (Currently Amended) The program storage device of 
claim 21, said method further comprising storing at least part 
of said one or more authenticated rights locker access 
requests in a bookmark on saida user device. 

28. (Original) The program storage device of claim 21 
wherein said one or more authenticated rights locker access 
requests are embedded in a Web cookie. 

29. (Original) The program storage device of claim 21 
wherein said one or more authenticated rights locker access 
requests are encapsulated in an HTTP Response message. 
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30. (Currently Amended) A program storage device 
readable by a machine, embodying a program of instructions 
executable by the machine to perform a method for digital 
content access control, the method comprising: 

receiving , by a rights locker provider, a rights 

locker enrollment request from a user device associated 
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with a user, said rights locker enrollment request 
comprising a digital content request and enrollment 
authentication data; 

determining , by said rights locker provider, whether 
said user is authorized, said determining comprising 
determining the rights of said user to access said rights 
locker and the rights of said user to digital content 
specified by said digital content request; 

if said user is authorized, 

initializing , by said rights locker provider, 

said rights locker with rights to said digital 

content ; 

obtaining , by said rights locker provider, one 
or more tokens that authenticate future access to a 
rights locker corresponding to said digital content; 

creating , by said rights locker provider, one 
or more authenticated rights locker access requests 
based at least in part on said one or more tokens; 

sending , by said rights locker provider, said 
one or more authenticated rights locker access 
requests ; 

receiving , by said rights locker provider, an 
indication of a user selection of one of said one or 
more authenticated rights locker access requests; 
and 

accessing , by said rights locker provider, the 
contents of said rights locker according to a type 
of said rights token. 
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31. (Original) The program storage device of claim 30 
wherein said digital content request comprises a request for 
initializing said rights locker with rights to specified 
digital content. 
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32. (Original) The program storage device of claim 30 
wherein said enrollment authentication data comprises: 

rights locker access authentication data for 
determining what rights, if any, said user has to access 
said rights locker; and 

rights content access authentication data for 
determining what rights, if any, said user has to digital 
content associated with said rights locker. 

33. (Original) The program storage device of claim 32 
wherein said rights locker access authentication data 
comprises payment for use of a rights locker service. 

34. (Original) The program storage device of claim 32 
wherein said rights content access authentication data 
comprises payment for rights deposited in said rights locker. 

35. (Original) The program storage device of claim 30 
wherein said enrollment authentication data comprises a 
reenrollment key determined in a previous enrollment request 
for said rights locker, said reenrollment key for 
supplementing or replacing enrollment authentication data of 
said previous enrollment request. 

36. (Original) The program storage device of claim 30 
wherein said determining comprises determining whether said 
user is entitled to become an enrolled user based at least in 
part on whether payment for use of the rights locker service 
succeeds . 
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37. (Original) The program storage device of claim 30 
wherein said determining comprises determining whether an 
enrolled user is entitled to populate said rights locker with 
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rights to said digital content based at least in part on 
whether payment for said rights succeeds. 

38. (Currently Amended) The program storage device of 
claim 3 0 wherein at least part of said one or more 
authenticated rights locker access requests are for storage in 
a bookmark on esaid user device. 



39. (Original) The program storage device of claim 30, 
said method further comprising embedding said one or more 
authenticated rights locker access requests in a Web cookie 
before said sending. 



40. (Original) The program storage device of claim 30, 
said method further comprising encapsulating said one or more 
authenticated rights locker access requests in an HTTP 
Response message before said sending. 



GUNNISON, McKAY & 

HODGSON, L.L.P. 
Garden West Office Plaza 
1900 Garden Road, Suite220 
Monterey, CA 93940 

(831)655-0880 
Fax (831)655-0888 



41. (Currently Amended) An apparatus for digital 
content access control, comprising: 

means for determining , on a user device, digital 
content to be made accessible via a rights locker; 

means for determining , on said user device, 
enrollment authentication data; 

means for sending , from said user device, a rights 
locker enrollment request to a rights locker provider, 
said rights locker enrollment request comprising a 
digital content request and said enrollment 
authentication data; 

means for receiving , on said user device, one or 
more authenticated rights locker access requests in 
response to said sending, said one or more authenticated 
rights locker access requests for subsequent use in 
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accessing digital content associated with said rights 
locker; 

means for receiving , on said user device, an 
indication of a selection of one of said one or more 
authenticated rights locker access requests; 

means for sending , from said user device, said 
authenticated rights locker access request to a rights 
locker provider; and 

means for receiving , on said user device, a result 
in response to said sending said authenticated rights 
locker access request. 

42. (Original) The apparatus of claim 41 wherein said 
digital content request comprises a request for initializing 
said rights locker with rights to specified digital content. 

43. (Currently Amended) The apparatus of claim 41 
wherein said enrollment authentication data comprises: 

rights locker access authentication data for 
determining what rights, if any, aaid a user of said user 
device has to access said rights locker; and 

rights content access authentication data for 
determining what rights, if any, said user has to digital 
content associated with said rights locker. 

44. (Original) The apparatus of claim 43 wherein said 
rights locker access authentication data comprises payment for 
use of a rights locker service. 

45. (Original) The apparatus of claim 43 wherein said 
rights content access authentication data comprises payment 
for rights deposited in said rights locker. 
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46. (Original) The apparatus of claim 41 wherein said 
enrollment authentication data comprises a reenrollment key 
determined in a previous enrollment request for said rights 
locker, said reenrollment key for supplementing or replacing 
enrollment authentication data of said previous enrollment 
request . 



47. (Currently Amended) The apparatus of claim 41, 
further comprising means for storing at least part of said one 
or more authenticated rights locker access requests in a 
bookmark on asaid user device. 

48. (Original) The apparatus of claim 41 wherein said 
one or more authenticated rights locker access requests are 
embedded in a Web cookie. 



49. (Original) The apparatus of claim 41 wherein said 
one or more authenticated rights locker access requests are 
encapsulated in an HTTP Response message. 
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50. (Currently Amended) An apparatus for digital 
content access control, comprising: 

means for receiving , by a rights locker provider, a 
rights locker enrollment request from a user device 
associated with a user, said rights locker enrollment 
request comprising a digital content request and 
enrollment authentication data; 

means for determining , by said rights locker 
provider, whether said user is authorized, said 
determining comprising determining the rights of said 
user to access said rights locker and the rights of said 
user to digital content specified by said digital content 
request ; 

means for, if said user is authorized, 
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initializing , by said rights locker provider, 
said rights locker with rights to said digital 
content ; 

obtaining , by said rights locker provider, one 
or more tokens that authenticate future access to a 
rights locker corresponding to said digital content; 

creating , by said rights locker provider, one 
or more authenticated rights locker access requests 
based at least in part on said one or more tokens; 

sending , by said rights locker provider, said 
one or more authenticated rights locker access 
requests; 

receiving , by said rights locker provider, an 
indication of a user selection of one of said one or 
more authenticated rights locker access requests; 
and 

accessing , by said rights locker provider, the 
contents of said rights locker according to a type 
of said rights token. 

51. (Original) The apparatus of claim 50 wherein said 
digital content request comprises a request for initializing 
said rights locker with rights to specified digital content. 

52. (Original) The apparatus of claim 50 wherein said 
enrollment authentication data comprises: 

rights locker access authentication data for 
determining what rights, if any, said user has to access 
said rights locker; and 

rights content access authentication data for 
determining what rights, if any, said user has to digital 
content associated with said rights locker. 
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53. (Original) The apparatus of claim 52 wherein said 
rights locker access authentication data comprises payment for 
use of a rights locker service. 

54. (Original) The apparatus of claim 52 wherein said 
rights content access authentication data comprises payment 
for rights deposited in said rights locker. 

55. (Original) The apparatus of claim 50 wherein said 
enrollment authentication data comprises a reenrollment key 
determined in a previous enrollment request for said rights 
locker, said reenrollment key for supplementing or replacing 
enrollment authentication data of said previous enrollment 
request . 



56. (Original) The apparatus of claim 50 wherein said 
determining comprises determining whether said user is 
entitled to become an enrolled user based at least in part on 
whether payment for use of the rights locker service succeeds. 

57. (Original) The apparatus of claim 50 wherein said 
determining comprises means for determining whether an 
enrolled user is entitled to populate said rights locker with 
rights to said digital content based at least in part on 
whether payment for said rights succeeds. 

58. (Currently Amended) The apparatus of claim 50 
wherein at least part of said one or more authenticated rights 
locker access requests are for storage in a bookmark on a said 
user device. 
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59. (Original) The apparatus of claim 50, further 
comprising means for embedding said one or more authenticated 
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rights locker access requests in a Web cookie before said 
sending. 

60. (Original) The apparatus of claim 50, further 
comprising means for encapsulating said one or more 
authenticated rights locker access requests in an HTTP 
Response message before said sending. 



61. (Currently Amended) An apparatus for digital 
content access control, comprising: 

a memory for storing said digital content; and 
a processor configured to: 

determine , on said apparatus, digital content to be 
made accessible via a rights locker; 

determine , on said apparatus, enrollment 
authentication data; 

sen d, from said apparatus, a rights locker 
enrollment request to a rights locker provider, said 
rights locker enrollment request comprising a digital 
content request and said enrollment authentication data; 

receive , on said apparatus, one or more 
authenticated rights locker access requests in response 
to said sending, said one or more authenticated rights 
locker access requests for subsequent use in accessing 
digital content associated with said rights locker; 

receive , on said apparatus, an indication of a 
selection of one of said one or more authenticated rights 
locker access requests; 

send , from said apparatus, said authenticated rights 
locker access request to a rights locker provider; and 

receive , on said apparatus, a result in response to 
said sending said authenticated rights locker access 
request . 
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62. (Original) The apparatus of claim 61 wherein said 
digital content request comprises a request for initializing 
said rights locker with rights to specified digital content. 

63. (Currently Amended) The apparatus of claim 61 
wherein said enrollment authentication data comprises: 

rights locker access authentication data for 
determining what rights, if any, said a user has to access 
said rights locker; and 

rights content access authentication data for 
determining what rights, if any, said user has to digital 
content associated with said rights locker. 

64. (Original) The apparatus of claim 63 wherein said 
rights locker access authentication data comprises payment for 
use of a rights locker service. 

65. (Original) The apparatus of claim 63 wherein said 
rights content access authentication data comprises payment 
for rights deposited in said rights locker. 

66. (Original) The apparatus of claim 61 wherein said 
enrollment authentication data comprises a reenrollment key 
determined in a previous enrollment request for said rights 
locker, said reenrollment key for supplementing or replacing 
enrollment authentication data of said previous enrollment 
request . 

67. (Original) The apparatus of claim 61 wherein said 
apparatus comprises a smart card. 
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68. (Original) The apparatus of claim 67 wherein said 
smart card comprises a Java Card™ technology- enabled smart 
card. 
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69. (Original) The apparatus of claim 67 wherein said 
smart card comprises a CDMA (Code Division Multiple Access) 
technology-enabled smart card. 

70. (Original) The apparatus of claim 67 wherein said 
smart card comprises a SIM (Subscriber Identity Module) card. 

71. (Original) The apparatus of claim 67 wherein said 
smart card comprises a WIM (Wireless Interface Module) . 

72. (Original) The apparatus of claim 67 wherein said 
smart card comprises a USIM (Universal Subscriber Identity 
Module) . 



73. (Original) The apparatus of claim 67 wherein said 
smart card comprises a UIM (User Identity Module) . 

74. (Original) The apparatus of claim 67 wherein said 
smart card comprises a R-UIM (Removable User Identity Module) . 

75. (Currently Amended) The apparatus of claim 61 
wherein said processor is further configured to store at least 
part of said one or more authenticated rights locker access 
requests in a bookmark on said apparatus a uocr device . 

76. (Original) The apparatus of claim 61 wherein said 
one or more authenticated rights locker access requests are 
embedded in a Web cookie. 
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77. (Original) The apparatus of claim 61 wherein said 
one or more authenticated rights locker access requests are 
encapsulated in an HTTP Response message. 
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78. (Currently Amended) An apparatus for digital 
content access control, comprising: 

a memory for storing one or more rights lockers that 
describe digital content access rights; and 
a processor configured to: 

receive , by said apparatus, a rights locker 
enrollment request from a user device associated 
with a user, said rights locker enrollment request 
comprising a digital content request and enrollment 
authentication data; 

determine , by said apparatus, whether said user 
is authorized, said determining comprising 
determining the rights of said user to access said 
rights locker and the rights of said user to digital 
content specified by said digital content request; 
if said user is authorized, 

initialize , by said apparatus, said rights 
locker with rights to said digital content; 

obtai n, by said apparatus, one or more 
tokens that authenticate future access to a 
rights locker corresponding to said digital 
content; 

create , by said apparatus, one or more 
authenticated rights locker access requests 
based at least in part on said one or more 
tokens; 

send , by said apparatus, said one or more 
authenticated rights locker access requests; 

receive , by said apparatus, an indication 
of a user selection of one of said one or more 
authenticated rights locker access requests; 
and 
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access , by said apparatus, the contents of 
said rights locker according to a type of said 
rights token. 



79. (Original) The apparatus of claim 78 wherein said 
digital content request comprises a request for initializing 
said rights locker with rights to specified digital content. 

80. (Original) The apparatus of claim 78 wherein said 
enrollment authentication data comprises: 

rights locker access authentication data for 
determining what rights, if any, said user has to access 
said rights locker; and 

rights content access authentication data for 
determining what rights, if any, said user has to digital 
content associated with said rights locker. 

81. (Original) The apparatus of claim 80 wherein said 
rights locker access authentication data comprises payment for 
use of a rights locker service. 



82. (Original) The apparatus of claim 80 wherein said 
rights content access authentication data comprises payment 
for rights deposited in said rights locker. 

83. (Original) The apparatus of claim 78 wherein said 
enrollment authentication data comprises a reenrollment key 
determined in a previous enrollment request for said rights 
locker, said reenrollment key for supplementing or replacing 
enrollment authentication data of said previous enrollment 
request . 
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84. (Original) The apparatus of claim 78 wherein said 
processor is further configured to determine whether said user 
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is entitled to become an enrolled user based at least in part 
on whether payment for use of the rights locker service 
succeeds . 

85. (Original) The apparatus of claim 78 wherein said 
processor is further configured to determine whether an 
enrolled user is entitled to populate said rights locker with 
rights to said digital content based at least in part on 
whether payment for said rights succeeds. 

86. (Currently Amended) The apparatus of claim 78 
wherein at least part of said one or more authenticated rights 
locker access requests are for storage in a bookmark on a said 
user device. 

87. (Original) The apparatus of claim 78 wherein said 
processor is further configured to embed said one or more 
authenticated rights locker access requests in a Web cookie 
before said sending. 

88. (Original) The apparatus of claim 78 wherein said 
processor is further configured to encapsulate said one or 
more authenticated rights locker access requests in an HTTP 
Response message before said sending. 
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